CVE-2007-2194

Published: Apr 24, 2007Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in XnView 1.90.3 allows user-assisted remote attackers to execute arbitrary code via a crafted XPM file with a long section string. NOTE: some of these details are obtained from third party information.

Affected (1)

Products: Gentoo: Xnview

Gentoo

1 product

Xnview

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Gentoo Xnview	Version 1.90.3

References (16)

http://osvdb.org/35235

Source: cve@mitre.org

http://secunia.com/advisories/24973

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/26006

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200707-06.xml

Source: cve@mitre.org

http://www.securityfocus.com/bid/23625

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/1488

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/33810

Source: cve@mitre.org

https://www.exploit-db.com/exploits/3777

Source: cve@mitre.org

http://osvdb.org/35235